CVE-2024-8401 | Schneider Electric EcoStruxure Power Monitoring Expert PME 2021 up to 2021 CU1 cross site scripting (SEVD-2024-254-02)

A vulnerability, which was classified as problematic, was found in Schneider Electric EcoStruxure Power Monitoring Expert PME 2021, EcoStruxure Power Monitoring Expert PME 2020, EcoStruxure Power Operation EPO 2022, EcoStruxure Power Operation EPO 2021 and EcoStruxure Power SCADA Operation 2020 PSO up to 2021 CU1. This affects an unknown part. The manipulation leads to cross site scripting.

This vulnerability is uniquely identified as CVE-2024-8401. It is possible to initiate the attack remotely. There is no exploit available.

It is recommended to apply a patch to fix this issue.